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I. INTRODUCTION 


Sostware "portabilitm, as defiaedeby “Poole aní Waite 


Mer. ae, ismithe measure onmtne ease wnich 


ردم 


PCS LM Cal. me 
meensrerred ¿rom one environaent to another; 1 the ezfuort 
rTegquired to move the program 1s much less then that reuuirme! 
SS enc 117-۲37007۳ "00ے‎  ت‎ "effort 1s Shalíi Im an 
E ute Seise, then that program 15 hiaghiy portarie. 

Sortware portability “has "“Becotte an ara GF intense 
65876801 as the sisSottware crisis" continues es: 
usrentum. Jrs less portaple a rrogran 15, the more it will 
Feet in terms of time and money to transfer it to arotter 
Bene. zone important: impact Of the lazk of portabilitv 1s 
that there will be iittle incentive tu create truiv user 
friendly environments since the cost of  producinc suci a 
System can not be amortized over many machine 
implementations. 

There have been many attempts to solve the portalil1tv 
problem. Many approaches nave failed, some appioackes have 


achieved limited success, few have providei a broäßlasel 
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nodology or achieving portartiiity. High level Janguac: 


Meee one or the first attempts at resolving tie troilen. 
They, however, ECT CEO SNA. to be useful, an: 
Fonsequente:y extenüed, or too ilarge and tnere£ore subsetedc. 
Even if tne language achieved a jreat deal of consistency 
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over many implementation, programs were Stili Gdesigzel with 
non - standard, machine dependent features. 

Decompilers and language translators were isvelop 
E zeeonplexiry and roorwerelrability discoura.;eód  furtnane: 
development 


The use of specifications to define the Fetavicor cra 


Peogram ss a method which offers a way to solve the 


sortability problem. Altloug. more work 15 r ss. 
from a specification, the description OL proj Lam Conc 
can be more precise and inpiementation indaepenLocenccqm 
possible. Complications arise, nowever, when the Spaces 
tion larguage is ambiguous. Formal specidecat3ome lance 
Lased on mathematical principles alleviate tnis Prai c E 
often are more difficult to use and frejuentiy ۶۹۶٦ 
the programs they specify. Despite tne dıffiicu 
use, coral specification: oO ff Cie uL ou uu 
freeáom from implementation without anbijuūity. 

A specification methodoiogy based orf ınLıtıdı ٦ 
promises to be a viable answer to the portability ٣٣ 
witnout the drawbacks of most focimal specifico 
techniques. 

Algetras have a wide range of applications. dany 
researchers nave proposed treatiny abstract data types as 
algebras [Ref. 2], [Ref. 3], [Ref. 4]. Algebras are pare 
ularly well suited for deserisın,; data 17 dat 


a 
consist oz data elements and operations on the iata elemsocrntz 


ta 


which is essentially tne definition of an algebra. Fasei 
in his thesis [Bef. 5], noted that ir algebras cane 
to specify uata types, then the next ster wouli be to use 
them to,specify languages; a prcgram is composeíi of instruc- 
tions which can be expressed uSil.j alyepras. Furthermore, 
research at the Naval Postgraduate School is aimed at ai 
algebras to specify an abstract machine. A machine can De 
described using algebras since the execution o? instructions 
Causes tne machine to change state. Aljebras are used to 
define the effect each instruction has on the state ofie 
machine. 

rut simply, by using aigebras, formal specifications can 
be produced which are truly independent of ap 96س“ ٭<‎ es 
Eu many implementations of the specification can ke 


created which emulate a formal algebraic specification. In 


10 


adddtion, it is possidise anc mois reasonable to prove the 
ST cerness O. a rro olenentation developed from an alyetralc 
specification. 

MS Sea reia ter” Naval. 2ostcoracuato ScLooi i 


successful in specifying an abstract aacaine, software c 


= 


1 


4 
t 


a 
then be targeted for the abstract  üuacnine ani freed Îro 


E 


machine dependence.  À simpler layer of software will trans- 
EU tuewapstract nachzne comuaands into a particular aacniae 
coie. A tremendous savinys can be realized vhen comolex 
Porec, such as coltar that suports a user frie 
nvironment, is targeted for this machire. 20۳۰۳۰۲ سر ت770‎ ٣۴ 
May be feasible to determine if one asstract machine is 


equivalent to another because of the precise algebraic spec- 


BE 7 a va Y 


as 


$) 


Ai cations. Equivalent abstract wachines woul 


H- 
E3 
ED 


o= translatiny software to dirferent machines. 

The intent of this thesis is to define a Suitable 
sanyuaye for an algebraic specification which minimizes the 
Eeoolem With using this methodiojy, and to lapiement ar 
experimental syntax directed editor using this lanavase. 
Chapter two provides the backgrcund theory of specifications 
based on algebras. Chapter tnree describes the various farts 
۳۰۰ algebraic specification and the corresponding parts in 
the  orcposed langua Je. Chapter 79 7220۳۷ 710 66 56٣3 


directed editor £or the language. 
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II. SPECIFICATIONS BASED ON ALGEBRAS 

The purpose of this chapter is to ٣ ہ7 "ه236 ۷۷ہ‎ 
tion to algebras used for specifications. soyjuen et ai"s 
work using algebras to specify abstract data types provides 
the basis for tne language presented in the next cnapter 
[Ref. 2]. A review of definitions and teras usec ah tne 
algebras they discuss is worthwhile before xrtroauccm ES 


Specification ianguage. 


A. A REVIEW OF ALGEERAS 


AN algebra consists of a set, called the carrier COMA 
algebra, an operator defined on the carrier and dist sS 
guisned elements of the carrier, called the constants. They 
are normally represented using a bracketed tuple. ON 
exanple, the ۹8881. Opel EOL on integers would De 


expressed as foiiows: 
SUM t D 


the carrier setecan be of any one type we wish to tanio- 
ulate such as real numbers, integers or character Str vie 
For the addition operator on integers, tuo Carrier ee 
identified Ly the capital letter I anû the cuc 
Carrier set are the inteyers. The iistinyuıisanel element or i 
is Zero. 

An operation is a mapping taking one or more elements in 
the carrier to an element in tne carrier. For example, the 
addition operator on integers will take two iutegers and map 
them to an integer as shown in Figure 2.1 . 

It is common practice to refer to a specific Cia sS 


algebras. The members of a particular class have the same 


Pee ori in er Opertatcrs (Ref. 2]. O 
MI ٦٦ ت۴۹۰‎ Hom,» cddltlon ali multiplicatio: cver- 
ators on integers are members of the same ciass since they 
nave the same signature; they map two integers to one 


integer. 


mmm ms em cr ee ee پس پو یی س‎ Sc mm me ھا ہس و ا ص سے س اا ا س کت‎ e کے سو‎ 2o RU 7٦ 


integers 


Pelee ER ees a “۲١ے مسب‎ 





| 


rd‏ ی سوھ OO ey Se es Meee‏ 0ص 


| 
| 


—— ED bP eww EEE سے وی و‎ SSS د کس سس س سس کک و‎ SS ee mm 


Figure 2.1 Mapping of integers. 


The constants or distinguished eiements of the carrier 
usuaily have special properties. The numper zero in tie 
integers has a special property in regaris <5 the addition 
Meemator; any number added to zero will aan back to that 
member aS Shown in rigure 2.2 . Ade case ls eclilLications 
ENS not explicitiy deal witn distinguisied elements. 
instead, constant operators are used to describe the distin- 
guished elements. This is done to achieve inplenentation 
independence in the sjecificaticn. 


Parra LS mot Usually interesting uniess it has s 


O 
E 


n 
— 


specific structure. The structure is defined Dy axioms. 


Using the above example, the addition operator as defined 


d 


== + 
es SS سے حم‎ D س س‎ (U «mi GH "SED D D جم‎ 


| 
my 


Integers 
N 


| 
poss 
/ 
ae 


L A AA De an سط پود‎ AA ns سے یی یکین یت‎ 


= د PED. c ERR DE S TE eS ES D‏ ہے 


Fiyure 2.2 A Constant dappungs 


will not Le useful if every application of the و بن‎ ٣ 
mapped an element to the same element. Ihereiore restze 

tions on the behavior of the addition operator are defined 
which 1imit the mapping. Later it will be Shown now axioms 
deíine tne behavior of operators in an aljekrare 


specification- 


B. SIGNA OR MANY SORTED ALGEBRAS 


An algebra with one carrier set and  aepping 25999 


Ct 


particulariy usefui for the ¡purpose of Specifications. FONS 


= 


instance, in defining a stack as an abstract 16 "+6 
alyebras, we would not want to be limited to one ty, of 


data the stack contains SUGhvds 9a scu GO It URS 


insted 
we would ike to talk about a Stack of integers, Eee 
booleans, etc. Therefore in Specifying an algebra IOI û 
Stack, a 'sort' set would be defined. Each element of the 


sort set would be an index to a carrier set; the sort would 


identify the carrier set. A stack data type can These 
defined as having a sort set as follows: 


S={integers,boolean,stack,reals} 
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Bach eiement in the set S re ,presents a carrier. Men ote 
Peele to cerine a Stack or redarts, integers, ani boolee: 
MMS Notice halt a Stack aliso 1S áa sort; a stack is a 
Pea crPENMPNOPJecerwaErer operations are performed on It. Asa 
Mesuit, stack is also a carrier set. 

۰۰۰۰٠۰۰٠٣۰۰۰۰٠٠٦ ےت‎ Maly Scrts of an algebra, it is 
eS Table (GO Have various Operators on tre sorts. Operators 
or the data type are defined by mappinys [rom zero or Tore 
elements from carrier(s) to an element ina Carrier set. 
Using tne stack example, the push operetor can 5e defined 


as: 
push: inteyer,stack -> stack 


ihe meaning of this operator is that given an elemert Iron 
each of the carriers identified by integer and stack, the 
push operator produces an elenent in tne carrier identifie} 


۴۰۰۰۰.۹٣ ×٣. This 1s deficted in Figure 2.3. 


| 
| 


| 





Stacks 


E A لات‎ 


ep a ee pe ںی ہے مد‎ E ESTE ana Mr Can (ne nn Mr tee ہ سکس‎ 


73 01767 23 The Fush Operator. 


ES 


The o,erators in an alyeoralc Speciricar Jon ore cg uM 


a sorted signature, Sigma, OF Oem, One ona ٠ wh Chee 


family of sets. Eack set of the family contains a pem 
ular domain for a group of operators.  Tunese ail neve 
Narity" discussed in the previous section. Usin; tke Suam 
example, the arity Signa(snteger §e ac EO defines A 
domain for tnose operators which fap ah integer and a S 
LO Edck- The push operator woul Je a uenler cias 
Soma Any other operator which toon an ٠۶ت‎ ee 


stack and mapped it to a stack would have the same arity. 

The pop operator would be in the set of operators given 
by the arity Sigma (stack,stack). II there was an operator 
whici removed two or more elements icon a stack, it would 
also have the same arity. An interesting point here is that 
the integer which is removed is a side effect which Aust he 
Gescribed in the euuations ror the operator. All Ve 
operators defined using the sort set are coiiasctive.y kaoowsü 
as the Sigma signature 


Given the above, a specirication algebra comme Los 
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sort set S, a Sigma signature on the sort set, and nane 


E: 
fu 


operators for each Signature. Algebras Jefinei aS Such mme 


called mary sorted aigebras or "Siquiea algebras | ٦ 


C. BCOLEAN AS A SIGMA ALGEBRA 


in order to explain tne use of axiods, a 32۷۷ 3ت تے بت‎ 0l 
tne Loclean data type as an algebra is presented. lt va 
specify how an implementation of boolean iogic should benave 
if used in a program or a machine. 

An appropriate sort name for the boolean data type would 
be bool and the corresponding sort set S would he [500 E 
Bool is the only sort type required to specify tne boolean 
data type. The carrier set that bool identities will cono 


two elements {T,F}. Although two specific elements of the 


16 


em er have been described here, A ۰ 006007 div cLO.se 
erent Tre esenta tions ۶ہ‎ ٤76 eleaents orf the carrier; a 


carrier with elements {0,1} wouid work equaiiv 


>" 
(D 
H 4 
نم‎ 
ê 
HA 
رت‎ 
© 
“>, 


algebraic specification, tne erements Of the Carrier are a 


© 
ct 


specifically defined so the impiementor may choose anv 


presentation for carrier elements. in this way, a spaci- 


fier can acnieve implementation independence. ONU TT. „UL 
e pDurpose of clarity, "the elements of the carrier vili be 


used in the boolean example to derine the operators 
Mae five boolean operators used in tue sSvecifica 


meet te as follows. 


Rue = "Returns a value of T. 

٣۰٠۰ ٠٠۰۰٥3 بت‎ Returcis a value of T. 

DO —cnpoto—- Returns the negaticn of a value. 
Um :mpres"- Implication 

aná The ٣66341 'and' cperator. 


Moo Nino notaron «ill be adopted zor operators to 


describe the operand sorts and the resulting sort. 


For Sigma(lambda, bool) 
Deu 7. 


false : => Bool 


For Sigma(bLool, bool) 


not: bool -> bool 


oreo a ( DOO DOOM DOO) 
AN E OO 1,500. > ool 


Inplies rosa, boal. J IIL 


The notation here is tne same as that used ty ceseride tiv 
Bush operator in the last section and will ve tne same Roce- 


tion used in the specification language presented later. 


ror the signature Sigma(lambda, Dose notatio: Tears 
tne "true" and "faise" operators produce an element in the 
Carrier set identified by  bcol. bubus iS uused- in 
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"conjunction witi Constant PG c MEE 75ت ت‎ lerne 
always proGuce tne same element and they appear to OMA 
something from notniny. The "nct" operator takes an element 
from tne carrier set identified Ly pool and produces an 
element in tue bool carrier set. The "and" and "impa m pi 
signature would be Sigma(bool bcoi,booi). Thart means, given 
two elements in tke carrier set  iüentizied 5y bool, MIS 
"and" and "implies" operators producción element in the 
Carrier identiried by bool. 


The sigma alyebra for boolean at tnis point is not very 


1 


interesting. This is because the operators nave no res 


è 


T 
tions on their behavior. Consequently most i1iplementations 
of  booiean using just this specification  wouid not 


useful. For example, the "not" o,erator sould be COLLIS O EEES 
t 


it took any element in tne Carrier set and produced the sane 
element. A more useful Sigma algebra wouid put restrictions 
on the operators. This is accomplished by inco OOE 
axloms or equations on tne operators. in tne Boolean ٤ 
algebra, we would introduce the rollowing axioms: 

1. false = not (true) 

ee Not (not (viy een 

3. and(true,v) = v 

4. and(false,v) = false 

5. ¿implies(v1,v2) = not (and (vl,not(v2))) 

jotice that the axioms were written without ٦ 


expılcit reference to carrier set elements; by not usd 
or F the Gata type achieves implementation independence. 
implementations of the E colean data type are now 
required to mimick the axioms when operators ar2 ay,plied. 
For instance, the regation operator, "not", now behaves as 
expected and any implementation would have to rerzlect ss 
oke and two. Axiom one shows tae effect "not" has onan 
element in tie cari e iE co Àxiom two further 3 20ہ‎ ٦ 


behavior of "not" by showing that any elenent inzther core 
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NN O era rca on ۴ tic "not" 9 و 23تج‎ twice Nhan 


- 


proauce the same element. 


The  !apd" operator behaves as desictel by  ezuations 
turee and four; avena ais vil anded" wit, t22 Yaiue 
Peocmceeosrrom the "true" operator will resuit in that value. 
Tipiies is defined bv axiom five as being the same 43 u 
NE ono MOL! anal Eni" “operators asiny tne same 


carrier vaiues. 

Moa Ac ٣٣٣۷۷۰٠٣٠٠٠٠٠٠٦ Of axion 3250, Jil the 
EM S nvoive varlabies Y, vl anrd v2 whick can be assi 
ali values from the carrier set defined ¿or the operators 
Ma “pot and "inmplies". The axıoas fora the oasis o 
the expressions that can be created usin; the variaries ani 
members of tue carrier set. This means that an expression 
which is built from other expression is permissable if it 
Mmrnces tO an element of the carrier set throiu the 
s»lIIcation of the axioms. 


To illustrate this, suppose we had an expression 
hot (and (not (v1) ,v2)} 


= 


If vil is assigned the element T and v2 is assicneä the 


element F, then the expressicn becomes tne roliowing Lv 
axiom cne: 

Dou) 
Eu-crurthüer reduces to not(F) by axior tour. zoo one 


impiies that this reduces to 7, an element of the carrier. 
Slate, 015210 ےط‎ X tnat fee ١ ۹۹٣٣٤ 
A ¡e permissitle expressions Maca e ۹11 7 
=rom the operators and eiements of tne carrier ere colle 
tively called the term algebra. The algebra that represents 
all tne expressions that can le made up of Variables ani 
Meenatons 15 Called a free algetra [ Ref. 2]. 
It is now possible to deriae a specification as a "pres- 


۰۰۲۶۰۹ ٭:‎ ٠2ج‎ ٣۹٣۰۰۰۰۹٦٦ و 75۳۹ 1ب‎ a sort set, an 


In 


~ 


operator domain Sigmd, ahd 441088 ON tne Operarios. MIOS 


entation will be the basis ror the Spec fica iiO Ta TM 


Speclanj ,presented in the tne next chapter. A Speciication 
deveioped from Speciang is comprise of one or aore presenta- 
tions and each presentation iS known aS speci icom 


modules. 
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III. A SPECIFICATION LANGUAGE 


CM E eee eee ee eee com ss s 


Liskov and  zilies [Ref. 4] have developed criteria zos 


evaluating a  rormai specification ian yuasce. ccc err 
iocuses on the underiying mechanism used in formai sreciii- 
EON. They Compared approaches usiny al.enrcas, Finite 


Strate Machines, mixed mathematical disciplines, ete. Tic 
Bee rıa used ine their compariscns are: 
E OL ali tyes ~- II o eS, ES TEC anc 
72790970605. 
E o ero Da SLL Should be easy to Construct a 
Specification from the language. 
IE eorsrenensimies a Tsetnerspeelifieatior relatively east 
to Munger stand? 
een ldae ات‎ ihe specification generated shouid 
define its meaning with a minimum rumnber 
ments. One flaw of formal specifications is 
۶7601067107 require more Statements than the program 
they specify. 
5. Applicability - Can the lanywage ve used for a Wide 
Pangdemen Spec lt teatl Ons. 


ATENAS TIBIA) A minimal cmange 3n corcepi 


rt 
"1 
(1) 
tf 
n 
p-? 
cr 
Uu 


۳۰۰۰۰۰٠٠٠٣٠۷۰۰۷۰ ٠ ٣٦٠٠٦٦47 76210 a spesification. 


i 


NIE O O Unter ying matielaties ror aljebras Satisi” 
B Ercrrallty criteria and the axioms rest-zict tne amount ot 
OT mation reguired to explain desired benavlor, mS 
ENuSfyxng tinimality. Duc ٦.٦٥کے‎ Chat envy Aasir 
change in behavior requires a minimum o£ additional axions 
MOL mogdırjcatıons to the existing ones. As Zora 


Ey, algebraic specifications are being used ¿or 


1 
a 
rx 
N 
rt 
H 
er 
g 
(+ 


Machines, data types, and proyramminy lanyuayes, 58 


indicates a wide range of applications. 
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Al,ebras, in Liskov and Zille'S OPIO. SA 
of the above criteria except conmprehensidilty spi cons MI 
ab PEU These deficiencies can be reduced to a wanageable 
level. The following proposed language, Speclany, wi. ieee 
mize these problem areas. In this Chapter, it wid be SENE 
that a complex specification can rLe moducarized; Drove 7 
sma ۴ units Which enhance ب‎ 0115 ٤7۱0 6-8 67 and 
comprehensitLility. 


There are many underlying issues invoived in using alge- 


bras for specifications which nave not LEC. ICS کب‎ 
issues such aS proving Speer TIieations Come بے‎ 37 
versus finite specifications, implementation anu  otlee 


conplex issues will nct be addressed. Tne ۶ 0+1 ٢ 3 +٦ 
are to familiarize tie reader With tke yrammar Lor Spec 
parts of a specification produced from the 5 ى ج0‎ 4188 07 
t 


and a brier explanation of the uses of the various par 


A. SPECLANG GRAMMAR 


rerore presenting the varicus parts of a Speci 

constructed from Speclany, ah introduction to the Gran a sS 
presented. Appendix A contains the complete  gravuar Zor 
Sec dame The production rules are written in a aodiried 
Backus-Naur (BNF) notation. The meta-syzbols ir the Dee ven 
tior rules are used tc form the construction of a Speci aia 
tion and do not appear ain tice e cic HM An 
explanation of the meta-symbols used to produce terminar 


strings in the grammar are as fcliows: 


< > =- A Lame enciosed Dy pcinted brackets Iirdica ss 
Lon-terminal in tne grammar. 

' ' - Strings ın zuotes indicatoren ne nor 

Ce) - Rounded brackets indicate the scope of a modifier 


syimpol. 


- 9- ںہ —- 


= See mle The Cl@etre 1007071767 Nay LOlLsov either rzozsueo 
ےت کت‎ rminalszorzmon-terninals. it means that zero or 
more of the expressicns, terminals or non-terzinais may be 


produced. 


jee the dalternation modii ler 12S used iise the Éleere noii- 
rier. tt means that one or wore of the expressions, 


terminals or bpon-terminals may le produced. 


EL "ne Selection Odizler ind@eates a choice of nonr- 
fernanalls, terminals®Wor#expressiıons. If iS used between two 
ERE Ces in order to Clarify the selection, rounded Lracktts 


eme lose the selection. 


2 جج‎ ح۹٣۰۷‎ TE Indicates that the terminal, 
non-terminal, or expression is cptional and can be excluded. 
=> = The production symbol indicates what the Lon-terrinai 


on the left hana side can produce. 


۳۰۰٠۰٠٠٠٢٦٢٠٦ ۰ہ‎ rule consists ei a non-termlnal foiiowed ط‎ 
a production symboi followed by an expression. An expression 


is comprised of terminals, non-terminals, acdifying syibe: 


7 


4 
and mav inciude other expressions. The rfciivwing procuction 
ruie wili be used as an exampie througnout the reüainder oz 
the thesis: 


Euodureé spec» -» «spec header» 
new lime iment >< parawe O.0c K>) ? 


<newline><indent><spec_hoay> 


ihis ruie defines a specificaticn module. The module wouid 


begin with a specification header followec DY لت‎ ۶٦۹۰ GL 


can ession taat contains a carriage return, n cupo o MI 
AE Tame ter lock. Because it is an optional expressior, it 
uc be omitted. After the expression, another carriage 
return and indentation occurs followed Pa specification 


body. 
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“he granna: forme ۹٤٤۶٢٣٦ includes imicnta ۷ 
carriage returns to permit ".3ج‎ ۶9۲۷۷۰۹۷۰۶٦ 
tion. This was done to create a standard zornat +10 ss 
hopefully, increase the readability of a Specification. 

à specification is compiete when all the strings amm 
specification are terminai strings. This 2٣ت 9ی‎ ss 
starting with a nonterminal and substituting the expre PEE 
appearing on the rignt hand siđe of its procuct-*or ruled es 
remaining nonterminais are then substituted until all the 
Stringsgere Fern Tinal 2> 7۳ FOr example, starte EEE 
the nonterminal <module_spec> and substituting tbe int 


nand part of its rule results an the "٥ 


«spec neader» («newline»«indent»«param viock>) ? 


<newline><indent><spec_body> 
The rule for a specification header is: 


<spec_header> => 5 6 ۹> 6 9 t ud 


FH 
}4 
uD 
A 
27 
RU 
(31 
ا‎ 
bo 
(21 
(D 


Its right hand side is substituted into the 


or tne above strings to produce: 


'SPEC' <spec_id> 'IS" (<new_line> <inlent> <parat ¿loci sS 


<newline> «indent» «sec body» 


<newline> and <indent> can be interpreted aS Caridad: FE 


ardi a ۲٣3ط" 8ہ‎ 5 0۰٣ escept when it 10110460 MAA 
nodirier, and make tne develoying specification at peer Ue 
SPEC «spec id» X5 (CEI O aI UC E 
“Speer body 
In the lexical grammar for Speciang, <incent> iS tro PE 
either as one or more tabs or Spaces. This was done to 


permit the degree of indentation a specifier desires. Orce a 
indentation has been selected, it should be continued 


throughout tae Speci fication. fOr wimsctance, lf one tab is 


۲٣۰7707 ever tlie injert is encounterej‏ ,6٦ت‏ س۹۰۰۰ 
See tab Should be used.‏ 
SS Euh c ls OOeicidl Lt Can be eliminated to‏ 


produce: 


Segle “Is ECE 5 
<Spec _ ×7۶ 


IN ۱۰٣٠۰٠٠۰٢٠۰ are Mcontinued | until ali strings are 
eemBosed of terminal characters. 

la o o NUONCCREDIDGESUULSgUC5reclanc is «comp srec>. 
Tnis denotes a compiete specification. AS mentioned i h 
previous section a S,ecification developed from fSpeclany is 
made up of modules. Pic meal To Xn itself is a Speci a 
Myon. TGC bpetlect this the Fight hand sid= cf the production 
rule tor <comp_Spec> is <moduie spec>t. 177۰70۲ کے‎ words, a 
complete specification is made WD NT one or ıl OF < 


specification modules. 


Cee ARTS OF A SPECIFICATION 


eS mentioned In the previous section, 2 Couüpiete 3,20, - 
Tjeatıon is made up OF one or more specification Roltles. 
Ben Specification module iS an aigebraic specification, 


which can be viewed as a sukspecification of the compiete 


Eu Iycatrion, and has three distinct parts = header, sijra- 
mame, and axiom parts. PAUSE OEI OI Ae 15 SLtuez 
۶۰٣۰ 1:132٤ ٣٣٣٠٢٠٢ ٥٣0460٣٢٣٢" .ء2(‎ ۱٤4۶ 41069٤ 3ذ 7 ے12۵ ۶ہ‎ 0 0 ve 


modules do not import other specification woluies 6ء۴1‎ 


Seeendea modules GO import other specificetior modules to 
create a new specification. "Parameterized" modules are 
sea to minimize a Specification and can be either primitive 


or extended. 
A specification is started with primitive nodules. These 


modules are used to create other modules tärouyı the 
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techLivucs cescribed in the next COMA: a 


lu 
F 
e 
E 
( 
G. 
— 
۹ 
C 
[i 
j 


1 
p= 
ر(‎ 

j 
=) 


fication module defined in ٥٣٠٠٠٠٠ ٠٠٠٦٠٠٠٠٦٠٦٠٦٠٦٣ 
effect, consists of ali the other specification ئ٦‎ 
Since it is built fren the previous siege. rhe soll ormi 


Section Cescribes and discusses each part oi a ً . کت‎ 9+٦ 


module. 
1. Header 


The header identifies the Name Of the SvueCi fication 
and sonetimes contalmela "mou EM "Drinitivs" oculi کہ‎ 


Speclany contain no modiiiers and the zerrat ss er 


SPEC <spec_id> I5 
(Signature wart! 


(axiom part) 


<spec_id> is a slot for the particular nane or 7٦ 
declared specification. The kody of the svecification, Wasch 
contains the syntactic and semantic part, 9.1943 Uric 
the header. When used, the modifier is directiy unaer the 
header. Its purpose -is to impcrt otner Specifications ۶٤٦ 
the declared specification. Ine modirior 15 tie Dr ک‎ 


method used to combat the compiexity of an ai 


«Ci 
a 
tr 
۲ 
SU 
Rh: 
0 
LU? 

"Ho 
(b 
O 
pa 


iacation. it wiil be presented after the Other rares oL 


Specification are introduced. 


2. Signature Part 


Ihe signature part of an aigebraic specifica ss 
contains the declarations ror sorts and operator Sia 
defines the format and composition oí the operators. 0 


corresponds to tne signatures 8٣5ب‎ ١+١٣١ ea 


a. Sort Declarations 


In 5peclang, the format for declarinj 30r ٦ 


SPEC <spec_iıid> IS 
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) 


BU 


4 


t 


RO 
SOLE 


Sorte». 


pa 
0 
E 
۱ 

^ 
$ 
O 
x 
te 


oT ClO ONSITE EOF TOL apart 
nane. Assexslaımeäd in tie previous Chapter, the sort wiil 
Tdentify the carrier (s) used lin tne operators. All 


EN a C dared under tie header SORTS define tne sort 


۹ 


PO per ators 6ے 7 7ب‎ 3 2 


٦3٣۲۶٠٢۹٣٠٢۰ can Contain up to four‏ بت ۲0۶۰۰٣6‏ تت۶ ت3 
dirterent types of declarations:‏ 


: Pm PSU 


D 
1 
2.  Derived 
Sa Hidden 
y 


: ENTRO Te 


“hese ojerator type names are usecz as heailers to 
۰۰٠۰٠. ۶۲9 6ن ہ5وت0‎ ۶۹۲6۲۶664۶6١8 1h  Specianj. The Tasic 


rormat for an operator is: 


Y 


SES O do Or EL S sa > «SOEt 14 


cnan er IIl; can‏ مج ۳۳۹000 ت۱۱۱ تی 
nap zero or more elements from a carrier set (s) ldentilie‏ 
by the sort name(s) to an element of a Carrier set‏ 
men tlirieced by the sort name.‏ 


A Specification with sorts az 


Cu 
O 
(Ù 
F; 
£u 
tet 
Q 
rj 
tr 
+ 
E 
bs 
۴ 
í 


appear as follows: 


Po e adent irtier> 15 
SORI 
Soon lD; 
7 یی‎ 93۹5 
۶ vie 
<ep2107:.22°50rt ic; 
وہ >> 3۷۰76۳30 ۰۲و ت۔‎ 206 i1> -> o e d 


27 


710 /.۔ 

Xop id»: >5 رہ‎ +94 --.- c 
ERRON 

<op_id?>; <Ssort ia m rer 
DERVED 


Xop id»: > رہ ک‎ MU 


(1) Primitive Operators. Prinitive c presse 
are newly defined operators ana cannot be construct daa 
any other operators such as the Cerived operators CCCs 
next. Primitive operators may involve sorts fron sS 
specification modules and usually contain at least conte 


fron the specification In which tioy ace +4 1-٦ 


(2) Derived Operators. Derive operators are 
operators which can be produced from other operators. Sia 
are declared so the implementcr of tre soecificatioss 15 


aware that tneir existence is rot essential. ror insi en 
in the boolean specification, if the "not", "and" amamus 


operators are defined, it is not necessary to include an 


"implies" operator since in preuicate logic "implies" is 
equivalent too "not! cA ui und EIE The benefit ¡in havia NS 
derived operator, such as "impçiies", is to 1ا ےھ تھ‎ 2 


Specification ana, in many cases, make the spe 
more comprehensible. In the boolean example, "i 

well understood operator and using it in otüer sre 
nodules wili make the modules nere readable than if a Cong 
nation of. . "not" and ““or" Wen uu ٥ "impiies" would De 


declared under the DERIVED meade. 


(3) Error Operators. Ine proper hanciinj of 
errors. is crucial toa specific D. However, it is 
rrequentiy the case that specifications ror lancuajes; eee 


2 


types,  prograns, etc. do not precisely deriue what ٣٦ 
happen when an error is encountered. This is carte Ils 


ior the impiementor to do what he thinks 1s appropriate. Ti 
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tío worst cases, Homme 1S S20One, Pee ao fii) E euT 


Consequences. 


HAV Spectr ca TOR Shouid adlress those 
circumstances where the operator may not fake sense on the 
operands and define precisely how to handle then. Gi 
۰۰٠٠٠٠٠٠٠ ٦۳۰۰۰٣ ٠ت‎ ۹٠۹ت رت‎ ۶ 769۰0770 075530۴ “ae data type "STasık” oF 


integers, tlhe sorts and operators would be es roiio«ws: 


EEC STOCKS 
SOS 
oie 
Stack; 
6 ۶ ۹ 
Pee TUNE 
new: stack; 
USD ALO a Ck E Stack: 
0 S a C وت ات‎ 


on: Sla a 


The "new" operator creates an empty Stack 
E the "push" and "pop" operator behave as would be 
expected. The "top operator allows tne user to vicy LLC TO} 
element o2 the stack. 


Protlems occur when a user attempts to 


eo a “new stack or view tne  rirst eiement oi aû "new" 
Berex. These are valid operators Since "aes" returns à Stacı 


IM "oan “top operators are defined on a stack. 

It would seem Teasonable to introduce a 
Lac "erPor" to each carrier set to defire error Conti 
mo. uttag [ Ret. 3] proposed this approach. fhe result 


would be equations which specify vhat are ecror conditions. 


m 


AX1Ons pop (new)= error and top(rex) INSECTO see 


07 nee us wi 
> 


bh مب‎ 


resolve the problem. Guttag also required e.uätions whic 


y 


jefined the propagaticn of errors. Therefore oush(error,s) 
error and push(n,error) - error would be introduced into the 


Enecjyf2catron. 


72۰8561 nas 5015ی‎ ٠٣ ٣ ٠٠٣ ت‎ ١" "ء۹‎ پ۹٦‎ 
this ۹ہ ھپ‎ ۲ (Ref. USES ine valia equations 
top (push (n,error)) = n and topfgusı (nzerzae)) = CLEC CAMS 
produced from the axioms which imply n = error for any n. 


The approach adoptei in Specials MS 
one used Fy Fasel and developed Ly Goguen [Ref. 2]. o 
involves introducing error operators into tre s,ecif3 
These operators will produce error messajes. In the stach 
@Ge-Lator, we wouid define error operators "topnunev'" “aie 
"underflow" whicn produce Carrier values lil Cc E 


respectively and also generate error messages. In 5recisnú, 


t] 


the error operator wili De deciared under the error oosecato 
titie. Usiny the stack specification, tae 39 10187 


be as follows: 


SPEC Stacki 


SORI 
Lie 
Stack; 
OPERATIONS 
7ص‎ 
new: -> stack; 
ساط 51ت ج‎ STE SIT . 
POP: Stack = ows aac k ; 
top; Bene X. EMI CS 
ETE 


topnewdccoN at. 


Une roe SS Starx; 


The axiom  pcrtion of , the specifica ص۹‎ 
would use these operators to define error conditions 
(4) Hidden Operators. Untorturately, MES 
not always poSSlble O0 Navc Just peroo 
Some operators are required in order to define the user 
h 


operators. dajster demonstrates this wit 
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eee Oe o. INCAS oremqtors ther silow the is lt 

bore View any Clement of the Stack without Jisturosin = 

AAA TEL. CET n Order EO defile tnese operators, it is 
O 


Mecessary to define a "current position" which ; 


particular element in the stack, mot necessarily the cop 
element. The new operators are "down „Lich moves tlhe 
Michi position down one element in the stack, "cetarn” 


meen moves the current poSiticn to the top 9. 
apa “read" which wili give the value of the e 


= ter 3 a - ia ^ 1 
Dre ru at wi EC. 1 


۰7707 ۲۰۰۱061۱۲۲ 077 15 porsmting. Pusn, ror ari tc 


ےہ 
ttj‏ 
Gi‏ 
cL‏ 
1 
urn‏ 
م 
as‏ 


Le done when the current position 1S on tae top eicüuent. 
Ene ust ihe operators avarlaLre. to the user, 1t aozzedrcs 


that an infinite numrer of equations are re,uured tc de£in« 


the meaning of reading each element of tne stack (if tn 
stack is considered an infinite Spee Cca ton). in: 
following are just a sample of the equations rez ulred: 
read(push(nO,L) - nO 
read (down (push (n9,pusn(n1,1)))) = n1 
pesgtuown(dowu'pusnín)o,pushinl,pusnin2,L)4$))) = 12 


Enumerating ali the recuirea e 


- 


not particularly enlightening for the impiementor and is a 
SS vn lation Of Liskov ard Zilles minimality criteria. 
Boe solve this pzobiem, hidden operators ars intrclucei 


Stack, TASE! orFOvoseü uSlLj a aL ter.‏ سح ری و رو ٹک 
Operator "append". Append adds a new element to tne top o-‏ 
mm@emstack without changing the current position. If the‏ 


erent position 15 at the top of the stack then appena Las 


the same effect as push followed bv down: 


append (n,new) = dcwn(pusn (n, new) 
mcm usin iil, Lj) — down (pusn(n2, push(n1,L))) 


IM IcESuPBMenPeosrTtron" is other than the 


E tnengexiomsewould SHow that ap rending is unattached to 


the dcwn operator: 
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avpeni(n, cow. (L)) 3 OO 


The reaü operator can then be GEIS 


terms of the read and push operaron i 


1 


read ) ٦ n 


read (append (a,L)) = read (i) 


Append would rot ve an operator ava mE 
to tne user. Its creation was to allow a [finite Spec: me 
tion of an otherwise infinite specification. Hidden opeca= 
tors like append would be declared unler tne neater cea 
to alert the specifier of its special use. 

Hidden operators present problems when 
overused. In particular, they suggest an 1 جھ‎ 60 ٦ 
[RETO The a>pend operator is an example o2 tis 
read operator proplem may be soived in ways other than “sane 
append that is less suggestive in an implementation. 


In Speciany, n1duen operators are decis 


و( 


under the "HIDDEN" header. 


3. Axiom Part 


The axiom part implicitly describes the benaavion of 


the previously deciared operators. lt ١ج‎ ٣16 1395 "۹ 


Fi 
ba 


cu 
Pe 


lu the 


l 


portion of a 163ا ءەمے‎ ٤ ى۰ ھ169‎ 0 9+ --0:1:1:) 1-1 
axioms tc reflect only the desired behavior 3». n0 TOD ٦ 
رت 3ج۲‎ 

In spec ang, tne equations which define operator 
behavior are placed relow the header "AXIOM". Tue varianlies 
used in the operator are assumed to be of sort tydes used in 
the declaration of the operator. The format 07" 3 :) ٦ 


as follows: 


SPEC “Speen ud UE 
SORTS 
sorti; 


OPERATIONS 
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Fc 
r1 
H 
HA 
t] 
ri 
< 
bs} 


OTAN CEC SOLE; 
AXIOMS 


eu x 


ihe euuations are composed oí a leí 
Mat Slice separated iy an egual sijn. The ey 
not mean the two sides are equal. Saa ies thiar tuc 
terms tnat are produced from the operations on ea 
Bene same equivalence ciass. Aithoujn tnis is an imvortant 
concept ror the underlying tneory oi algebraic specifica- 
Bone, lt is NOt vital to the person developinj a sTecific 
tion. Another way of viewing equations is that each operator 
is defined by an eguatior tnat shows wnat happens wacn t 
operator is applied. For examrie, eins ene "2354" 
EOI ON a stack 5, we would want to shox that For ary 
element e, push (5S,e) produces a stack with 2 on top. Ihe 
Specifier should know that the top ot a stack is also 
m ٣60 tO the "pop" operator. The solution then in deiinins 


۰٠٠٠ 15 to relate it to the "rop" operator as follows: 


it 


pop (push (e,5)) e 


Met aer ini tion dor senavior through  alge- 
braic axioms provides independence £rod, inpiementation but 


also creates problems in constructing a specification. 


4.  Speclang ilodifiers 


When developing a complex proyran, a programmer wili 
modularize functions. The benefits are a wore feadatie 
program and the program is easier to develop and naintain. 
MmeartgebralcG Specitication using Speclany also can be 
developed tnis waj. 

pupesraundsscoguen Ref: 3] presented a structured 


aanguage which effectively breaks a specification into 
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8 


` 


smaller rore Mana JjeaLie LASA TOTA 


Y 


ee rc t1 mn 
= VÀ n M me ur 


0 


uU 


"theory Luilding" modifiers «nach permit ene spec c 


Q 


nodify previous specifications. Fasel used their tneory- 


fU 


building modifiers to develor his Specification "og 
PLO Trans The proposed modifiers to accompiisk this were 
combine, induce, extend and derive. Specilanj; uses oni 7m SS 
extend modifier to create specifications. 

The extend modifier adds Lew operators, equations 
and scmetimes sorts to a specification. Firthernors, E 
extend modifier allows the specifier to combine two or nore 
imported specifications to create the Lew spec 
Fhen two or more specifications are combined, aii of inei-z 
sorts, Operators, and axioms are lumped together t 
new specification; tnis method is a Shorthand ص٥٦‎ 
defining the sorts, operations, and axioms which ainlaize 
the specification. 

In order to show tne use of the extend wuoditier 
without 6۶ے‎ 707 rasel's exanple of the iaturai 


Specification is presented: 


SPEC Natura mIo 
SORIS 
nat;» 
OPERATIONS a 


ZenDno5 co mate 


Succ? na tz. 


we can extend the specification Wit 3g] 39 and 


Multiplication to create a new specification Natplus: 


SPEC Natplus iS 
EX SEND 
Natural; 
WE TT 
OFERATIONS 
PETITIVE 
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Pom widens => nat; 
Cetera ao > nat; 
AGE OMS 
ada (MUI: 


)1ہ 6ر0ت 3-20۸2 


Smee (oad (i,m) or 


multi 2: 

E ST TT MOI CIC TODS IN all the operators, 
axioms and sorts from tae specification nane  followinc 
Seema and in this case from Natural. Dada ہك <۶ ۳تت‎ 
۳. ---. 5ت۲‎ and axions are included followiig the ñheadin 
"QITHU. 

If the extend modifier was used to combine Specii- 
Cations as well as include new sorts, operations, in. 
axioms, then Natplus could have been extendel with sreciii- 
cations Boolean and Natural 23۱30 ےت‎ Ste COOLIO 
specification: 

SPEC Natplus I> 
EX END 
Boolean; 
Natural; 
WITH 
GPERSRAIIONS 
7 لی‎ 
OU ME nds dem ugue 
UI A ASADO: 
SOJA LtoO: Mat, nat => 1901, 
Aemet es bool,nat,net => nar; 
TONS 


again, 0) 


add (succ (n) ,n) 


D 

= SUCC (add {f£,3}) ; 
o 
multiply(n,succ(n)) 


multiply (ym) 


AO Io Dm) 
egualto(O,succ (m)) 


raise; 
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6 بد ت0‎ ۲09 )0,70( ۶۷۷٣۷٣ 
SE Ce N > 
if then else(7,7V eee E 


1 
< 
ho 


jr then eise za 


Tn this case we have two Specirications, Boolean and 
Natural, wnicn are used to define the Natplus specification. 
Ali of the specifications declared by tna ICE M 
petween "EXTEND" and "WITd" are combined to produce TEMO 
specification. In addition, new sorts, operators and ee 
tions are defined on the cornbired specirication, aha are 
cec lared follow Liga. ۹٣ 

Although the Watplus specification could rave TS 
easily defined without the extend modifier, a larjei,  Eore 
complex specification wouiü be difficult to read andl prob- 
ably impossible to understand. For exauple, tae arstnact 
machine specification described in cnapter i nas one Sio 


fication moduie which represents the final specification. 


Its extend modifier combines four other  ٭ 201ص‎ 1 ٣ 
nodules and extends them with approximately one hundred 
other operators and seventy equations. ir this tacnine eee 


described without the extend modifier, then each cl WEE 


combined specification's sorts, oLerators, and axionas would 


Lave to be inciudej in the specificatioa. Sinss eacra 22 ae 
combined specifications were aiso extended, each ol San 
specifications imported to create them would also Dê 
included. The result would be a specification containir. 


hundreds OL operators and equations, makiny the 
specification incomprehensible. 

Before a specification cau Use ametner Specirr mM 
in tne modifier, the specification being imported must have 
already been declared. in the above exauüvie, ×۱ ٠١ 7 
Boolean and Natural, would have already been declared in the 


complete specificaticn. 
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. Parameterized Modules 


lU: 


One metnod of minimizing a speciricition is chrouji 
the use of  parameterized modules. Soguen suggested this 
۲۰٠0906940068 ہ9 210ھ‎ (Ref. 9] explored it in depth. Ine 
NEO Ss EO use a procedúre like Spociricativen to 
create a new specification. “This is a 
eeh igue when many sjecificaticns tend 
mih tne case of a list of integers, characters, si. 
Des, etc. Instead of a Specification £257 each £7.20 
Fer ment, ida Generic template woula be used to descrizz how a 
Bert or a particular type should Denave. ine paranete rine’ 
EM c rycatvton $or "sts cam be invoked by passing tre 58271- 
mrcadtion for reais, integers, characters, etc. produc. a 
instantiation of the parmeterized Specification which is a 
hew specification. 

Many issues are still unresolved 11  paraiüe 
٣ ۶,٤1١٢۸ which will not Te addressed ner- (Ref. 9]. 
Eefore using parameterized specifications these i 
snould be understood. 

Ine paraneterize] module Consists of two primary 
parts. these are tne paraneter Dlock and the Speciiucatioi. 
ano Kk . 0ہ وت2‎ ET 1ر و رج و۲۰۲5‎ ۴۲690۲1011 Serinos waat 
nay tome inside a parameterized module during an instantia- 


een AN instantiation is the passing or a ac 


J 


+ 
ad. 


pl 


d l fication to a parameterized specification. 

Ihe parameters can be viewed as the interface to ine 
ende nodule wnich 2s invoring tne zrocedure. It consists 
of sorts, operators, nuc cns aides maa nounced by che 
ader "PARAMETERS". 

MS COIS parts کات سج‎ 3,eeiligarlon 
body used in primitive specification modules. Duc ts 
5۰39۰۶ بت‎ ۲٢5۰٢69٤ ۶5ہ‎ and axioms and 1S declared by the header 


Beer ined) BY". 


3.4 


1 ^ H Sud 
y 3 
REG OS 


aner the paraneterized ١+7٦ 


O 


LV 


à 
+ 


£y 


forual parmeter's sorts, Operalcn SO 


ng 


T3 
ہہ ہہس‎ 


ww” 
>»! 


^ 
4 
- 


Led 


a 


A 
کہ‎ 


7 
m 
de 


e 
ate actual  paraneters | pass] ٢١ tne desig. 


En 
ct 


specification. 
in Speciany, ۰ 6" ٥٣ a parameterized 


specification would appear as icllows: 


SPEC <identIii ler ٣ 


PARANE TERO 
SORTS 
<SSort pone 
' OPERA TICN: 
Some podyme 
Aral 


ax DO E 
DEFILI 760٥ 
SORTS 


AXLOMS 


(ax LOMB Cie 2. 


Ganzinger illustrated parameterized specizicata 


by using the list example: 


SENC LISTS 1S 
FARAMETERS 
ENRICH 
Boolean; 
AITH 
SOR 355 
elei; 
07 5 


PRI eve 


equal: elem,elem -> bool; 
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Pex ONS 
egual(e,e) = true; 
DEFINED BY 
SORT 
lasst ; 
OPERATIONS 
PRLI ANVE 
Lempit Gb 
1LSen pt yea Ss Ue ool; 
Sonic me Lets to >=: 
CUE: lI IIIS 
IAE NS e MS SO COLS t, List “> list; 
LILES ST YS 11st: 
AXIONS 
cdr(lengty) = lenrty; 
cdr (codec - le 
cür(if then else(r,l1,12)) 
۰-۔‎ Dee resp .car(il»,cirí(i2)); 
isempty(lempty) = true; 
Rencontres: 


isempty(if then else(p,11,12) 


= if tnaen else (b,isempty(11),isempty (iz) ); 
first (iempty,e) = e; ۱ 
Tsest (denaWie,l),„e') = e; 
جج‎ armen eise(b,.11,12),e) 


elem no eon (1 1,e) ,Licst (127e) ; 


NE oarameterized S-ecificaticn is invoked Ly using its 
name and brackets arcund the specification wnich is to be 
used for the instantiation. Therefore, if a Specification 


for a list of natural numbers was desired,  Lists(latural) 
A NOS ThE parameterized Specification for list. In 


order for ME REO De correctly م1 ۱ ۔‎ mire: ac 


E 


specification must "match" the rzormai parameters orf Lists. 


k 
in. 


in Speclang, the sorts are Matckeu "ب5 ت170‎ ٣٤ MA 
SORTS" ard the operators are matche@@ under tne De TE 
MITAD Ao LON o Under each of tnese headers the sorts 


and operators that are to replace the formal parameter m 
Jjositionel to the left ofi an "IS". The formal parameters sS 
actual parameters are replacing are positioned to tne 11 
Om “bue: ALSO In Speclang, the matching parameters are 
announced at invocation: Using thes E nunters 


invocation, it would appear as foilows: 


Lists (Natur TS 


S { 
JHE 


لت 


2 
ACTUM SIE 
nat IS elem 
DOOI TS ool 
ACTUAL OPERATIONS 
egual IS equal 
if_then_else IS if_then_else 
and T 117 


not LES nom 


Note that tne parameterized specirication fas 


XT 
3 


extend field in the parameter block. When this occurs, 


+ 
= 
(D 


parameterized specií ication must be invoked with sorts an 
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operators tnat also Match the ١٦+) 7 


2 
de 
۲٢ 
(D 


imported by the extension. In the List example, tue ze 
and operators in the Boolean specification were matched in 


tne TnVOGOGQGb m 


VUE SEECIFICATION EDITOR 


Be ٠٠٠ ۱۱0ب‎ 6666 ۴۲۰٣77 76ء‎ 67717681008370 a Syntax 
directed editor was designed to format a specification 
created from Speciang. Tne editor is based upon ideas fro 
Beavers [ Ref. 107) ana Haclennan [Kef. 11]. It is takie driven 
Tal a granmar is input and parsed into Seperate ۳ ید یہ‎ 
tion rule trees. The production trees are then used t: 
create a specificaticn tree. CTD the table netica, 
Berry 12S gained an altering tre  gra&mar without 
affecting the editor. dacLennan's editor anc tne idea 
presented by Davis was to create an internal tree £roi the 


grammar which was annotated; the tree nas ir 


pr 
\3 
n 
rj 
y 
WT 
y. 
C 
ry 


ewnicr could be used to generate the machine code, TRG 
S L ecification Editor presented here was desidgnej to create a 
Eactucally correct Specification and to make the inter- 
face with tne user simple and friendly. The internal tree 
created by the editor is not annotated as prescribed by 
Davis and MacLennan. Tne editor could be modified to inecr- 
porate annotations which  couid transform the syntax tree 


Created by tne tree to an annotated tree. A jrammar yrakiä 


H 


| 
4 


was developed for the parser which is based on the modifi 


( 


BNF notation presented in chapter II. 

Ihe grammar used in the editor is the samc as that in 
appendix A except for the following: 

1. Comments have not been incorporated. 


2. Ihe input grammar cannot have Selection  irvoivi 


expressions. For example, MOR Ollori 0290 95ن‎ 7: 


- 


» J 
سر‎ 
Aa 
ہو‎ 
` t 
ha 
i 
e 
NIS 
e 
be 


eUl SVOR UC acceptable Sipce tke ri 


side contains an expression with the selection: 


GO ar an Ca l1>Scr>sindent>)|<srec body») 


4 1 


This restriction was 707095 ف۹٤)‎ to 
force a clear display selection ana to Isdo 
roblens invclved in programming the ں3٣‎ 
descent parser. This restriction 15 not severe sS 
the richt hand side conu be replaced with a 


selection such as <param _Call> Greati e O 


<module> => <raran ص0۷۶‎ ٤٦ 


«param call» => «cam T Diod cec 


"nh 


3. The rules were NOI TICE +11111 تا 2ن‎ 0 
selections avallable. For example, the rule CODES 


X«nLodule spec» is as follcws: 
<mod_ spec> -> <spec_header><modillelis>: “spec pea 


This was combined with the rule ror <spoc_ koii ٦ 


create a rule: 
<module_spec> -> "SPre* <spec_id> ‘1IS' <irdenee 
<cr><modifiers>? <spec poay> 
A. AN EDITING SESSION 


This section will describe an editing session. Ve 


editior is initiated by entering the name of the editor 


= 


Speced. A prompt aprears re,uestinj the 89 


O 
E 


* 
ir a 


b 
(E 
rn 
+ 
ابا‎ 


ct 
TD 
1 


where the user had stored a tree “¿roma previous ell 


è 
$ 
* 


"~ 
R 


session. 

The screen is cleared and the first production rule's 
rignt hand side is displayed on the screen in Gn “un same 
form. The video is then reversed on the first sorterminal or 
modifier which an input selection can effect. Ail come 
strings which are displayed in reverse video are rezerred to 
as tne selector field. 

ror example, if «module spec» was the first rule, M 


the display would be as depicted in Figure 4.1. 
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E Sm cme am ae ee 


| 
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pue cca ons alam OLOCK>) ? 
<spec_body> 


and‏ سے ہے es ee tee ee‏ سک 


Mna. a idee li. | e e Lar MA Gana سود ی‎ m eim 


HE. Sspec rd» 

ELECTIONS: | a 
select d: Selector Gown u:selector up u: «uit edit 
bepeCurSOnR Wo tree £: Cursor down tree 


mern ےھ‎ re Ge Bas a 2 00 eg .- oh wo 
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Figure 4.1 Display of the Rule «module spec». 


Mais instance, the video ror «spec id» wouidá be reverse’ 
۶۰۰۰۰۲٠٠٢٠٠٢ tne selector, and the bottom o£ tne display would 
SV the selections available. 

the selector is directiy related to a seiection rcirter, 


ETE, Which points to anode in the speciracation ft cee 


being edited. Ihe ncde at whicn the sel ptr is pointing is 
referred to as the current node. Pi metre memo XS 310W. 
Ae cotton oz the display tcliowinjg "NODE:". Gi نتر‎ 2 


۳ جح‎ ode a nanber oi aliferent  soicctions 352 
Ege. The" "Possible selecticns a user Cai. maxe durin, an 


editing session are described in the followin; Sections. 


1. "s" Selection 


IB UM ente ted aldo tne current node is a rorter- 


minai, the node is replaced by the production rul 


1 
(U 


٦ 
d — 


Gas 


سر 
SS E TEST NnonterMinal. In the above exampie, if <syec d>‏ 


as selected, then the rule for <spec id> is inserted into 
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the abstract sgecirlcation troc Pa Tr lieto au. 


the selector 1S duvarcea. 








SPEC <spec_1d> IS (Sram c 
«spec 77۶۶٦ 


NODE: <spec_id> 

5 100 ٦: 

s:Sezect d:selector down = 6ء ا‎ ٤٣ 
b:selector up tree £: selector down tree 


an am au ee ees ly SO ts ee ts a eee eee O ee ee ee ee تہ‎ SU O a A O | A AM cm A MEN ee eee ee ee ee ee ee eee i ee ee 


5 2 تا‎ ۰٠۹۰06 61.13716 eae 
«param block» 
«Spec block» 


NODE: «identirxoer»";"-—-————0 MUNI 
SELECTIONS: 

s:select d:seliector down wu:selectomeud Gag 
b:seiector up tree f:selector Gown tree 


.. 
bh 
Es 
r 
ct 
t^ 
w 
i 
۱ J 
ea 
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Figure 4.2 Selection of a Non-terainal. 


I£ the current node 1S an option node, then the ucni 
selection will inhibit the display of the question marnm m 
tne nonterminals/terminals preceeding tne aodifier will 


become part of the abstract specification tree. À Sinilar 
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RE O Ca nen LLE Current redes a selection rnoulizer. 
IES case, all selections which. are no longer needed 
along with tne selection symbols are not dispiayed when the 
desired selection 1s made. 


igure 4.2 snows the tree before anā after an upcat: 


o 


There <srece 1d> and <param_blocx> were sezectel. 


2. "i" selection 


E: 


e or Zinsen selection Is available only when 
the current node 1S an identifier nonteruainei Cesi^natec uv 
Bee neirıer>. When this selection is made, tre portion oZ 
the screen where the identifier occupied is slanied. The 
ET at this point Can then type in the identifier desired. 
"ne input characters are then checked to ensure correct 
Eu calsyrammar for identifiers. if the input cnaraci 1 
Beorrect, it will be ignored and the elitor wiil wait 
another input. The input string can be terminated with 4 3 
must. In any case the string wiil be tertinated when its 
length exceeds twenty characters. After terminating tne 
input the editor updates the screen and advances ths 


Setector. 


E Ur" and "f" Selections 


pls 
O 
> 
= 


2 ۱٠٠۱۰۰۱۱۰۰۱۱0۱۶٣ 300 ٦67 ۲ ٢ selector up anc 
the screen respectively. 

ONE TOS the sel ptr stops on are not displayaris. 
in tnese cases, allthe descendants in the tree that are 
Elio ble are displayed via the selector. ÀS ar example, i= 
<module spec> is the current node then ali of the dispiayel 
Characters 1n figure 4.2 would te inverted and <module spec> 
npud be aisplayed at the pcttom of the 
ao prs, 


04 


MCN or e = 
Be «€r e d prr 
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De 
Ui 


4 "E" Nan de ceases cer 


o-— —_ ee Ee ee Se 


The "u"! and "d" selections are Siniier to res 
and "f" selections; they move the selector up and down the 
screen. The difference is that The 2 
will move to the next displayable node on the scores. MS 


facilitates moving the selector on the screen. 


= 


a "Selection 


The "m" selection is used when the current node loa a3 
selection nogliier node. SINCO a "miu, "y" acc 
selector movement selections wili not allo»  seoving t: 
selectcr into a modifier node subtree, tue "nn" co "MEM 
selection" xey was created Sc the user coula corsa sS 
selector over the desired selection. If the selector 15 on 
the last selection anda "an" is selected, tren the selector 
will move back to tne first selection. Tue selector wili 


remain in the selection tr cae and solect am 


made or the user makes a "j" selection to jum» out of the 
selection. 
6. "e" Selection 
ihe "e" selection allows the user to "erase" the 
string the selector is on. This means that tae string will 
no longer be disglayed on the screen. TLe "e" selecta o NEN 


available wren the current node is the option node 2Z aū 
nondisplayeä nonterninal. 

If the selector has an option symbol in lts rem 
the erase selection will eliminate the oftion - 
brackets if displayed, and the nonterminals and modiiiers in 
the selectors field. in figure 4.2 1r «raram block wa SEn 
desired and the selector was positioned on («param block»)?, 


then the erase selection would yield the following display: 


SPEC < denti ier? mk; 
<spec_body> 
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Eo Lm AS 


^» + 


Deere Ode indica cd at tie Bética 5 


bt, 


* . = 
«q 
4 


TLE 
is not a displayabie node, the erase wiil elimirate aii oc 
tne strings of the screen which are in seiector's field and 


replace them witu that node. 


7]. "rE" Selectio 


ewe se ٣۰٠۰۰٠ 1۰۰۰۷۰2٦ ۱٦٦ ٣ "٣7ہ‎ 16466 sn option noie 
in the display or a selection node. In the ;revious exanyle 
erase, If the sel ptr was positionel inr the specifica- 
ton tree so that the option may be reselectec, then the ۷ 
selection would replace the option tree in the specification 
Meee dnd the Gisplay wouia’ ie Wodated accorciugiy. A 
selector would not be visible in the case where tre optio. 
waS previously erased. Tae replace ieia at tre Lettom of 


the screen would indicate the option to be inserted into tos 


tree. 

In the case that the  cption or selection ñas een 
previously made, then the entire portion cf the tree irou 
the option or selection would be eliminated. The str mel 
that woulä be eiiminated are in tne selector*s field. kor 
example, if the Specification was as follows: 

SPEC «identifier» IS 
PARAMS Li KS 
Soe CaeLOck > 
"۶ 9 ۷۷۹٣٢ 
«spec block» 
EIN n curr:ont mode was the- "not'uduspEayed —option node 


<param blocx»?, tnen a "r!! selection would yieic: 


E ME docnbtIsem IS (<param b1OcK>) 7 


٣٢٣٢0٦06‏ <کے 


47 


B. DESIGNNERBNOBDOED 


The editor was written in Pascal ana rmplenmentcom ۓ_ے_ى-‎ 
Digital Vax 11/780 under the lS Seu TS 
editing session described in the preceeding section asia 
objective before tne desiyn of the edlen nor ae 

The design of the proyram was done Inma top-down na EEE 
The three primary modules are ds moles 

lie initadllzd emo 
As Main Dody oor 


S Termina tronos 


In order to siagplify the display, Certain TONES 
nals are treated in a special manner. The <indent> anc <cr> 


nonterminals are immediately interpreted by the editcr. 


These nonterminals mean indent and ٣ return 
respectively. 
The indent nonterminal, <indent>, bericre a pone 


Minal or expression means that the nomterninel ٦ 
descendants wili be indented Ey a preset tab or sov&aces il a 
carriage return follows. 


The identiiier nonterminal, <ilentifict>, is treated 


as a slot for inputting a string of cnaracters. "mrs ACA 
reasonable since all grammars ecuire 1denutiecrs. کو‎ 
iexical composition ci the identifier 15 bail? TOMOS 


ecito: 


2. 7 لس کے‎ 7 7٤ 


she first routine called by the main program eee 
Initialization. This routine in turn cai lS a Ouri e TE 
opengrammar to input the production rules from a grama 
file. Cpenyrammar has a scanner that ,rejrocesses the input 


rules to ensure that lexically they are correc- 11.1-٣٦ 
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we ae ea ee nana دج ج 07۴ب اج ۳02۳ح نے‎ پ٣‎ ai)", کا‎ 
Pee co CCM StI InN US, SQUOLCOMStUEINgS and melasyunois. Tre 
grammar rules are put into a record structure which consists 
ت0ٹ ٹ۰ت‎ r t hand sice of tne producticn 
rules. | 
The next procedure called 15 parseyreantmar. Tiis 
routine is a recursive descent parser. The parser is hased 
٠۱۱۱۶63 1006 7۲۱۶30 012-50 07 با تت0 ۲7 ت رر تن 01۳۰9۰۰۳۰ ت‎ proaucr.on 


meres. The grammar grannar IOI tie parser iS as foilows: 


40060٦1670 7 rule> ~> cmonteruirnai»«rule Dod y»‏ ۶ئ 
Nu cErodv c» 0sSPontersnat^|cexpress3on»j('*'j't'!]':';:)‏ 
1 


E SUressron» -»'«'(S$rule body»j|«ident list»)*) 


Bent list> —> <nontéerminal>™ ("| "*<nonterminas>) + 


Each 6oc 16 totem che Ganar Grammar 15 
mimicked by a moduie in the recursive descent parser. Every 
Broluction rule 1r tne grammar for Speclans is parsed into a 
separate production rule tree which describes its syntacti 
Structure. 

EES OS a AE Sara cer pro duetzon rule treo 
for the <module_spec> production rule. 

For each production rule tree tnere is poiater is an 
AY Of pointers to locate that rule tree. “ne rule trees 
are located by searching the array for the root with « nate 


tiat matches. A production rule tree 


pas . 


ہے An dO‏ - سے an‏ 
279% ات تا 36 اہک5 S,‏ 


5۰٦16۱۷ ۱:1 have pointer and integer fields as olios: 
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Jrammrules = recore 
parent: agmay (1..20) Of Siianae rom 
Len: Lt e Gem: 
chiid:arzay(ds 0۹۳۶٦۹0 oe 
par ptr [granates 
ch_no:integer; 
rtype:intejJer; 
num_ch:integer; 
disp: boolean; 
لے‎ nteger, 


3 3 
el c 


p—————À———————M———— ——— mem rm am ar me a A A A ts ei ee ۔ سے‎ eek 


<nodule spec» => ISDE cc EE 
$ > 1:71 ت> ۲2 6نا‎ 7 >> 7 ae 
indent><cr><ssee body 


O ر001‎ 


<module spec> 


DA | mul 


5 ESPE NECI E 22 <CE> Cun 


| 


EKE 


Zit 


Cc nente M c > 


Es 
= 


o a ۳". 


A ee ge ee ees cee een duxi des UA rs o a Mm qu cis سی ۔ کت ۔ ے ور مد صد‎ 


p Sp "A — m 
Figure 4.3 A Production Rule Tree. 

The "parent" identifies the name of rule, Strim o ss 

modifier. The field after pári; Mn, contains tne 


length oí tie parent character string. This feild is used 


Un 
c» 


A " ' Nea a E = . e^ 0 k ` ner ar ~ 
Meow Ottley eto Ser eon we Leer. ھ7‎ ۹۹۹۹ 0 


T 
() 
(^ 


"UO 


"EET. E ٠ 
A be L Q f 
- 


0%¡ 
مم 


EIS To “the descendants oim th EWC. Ap printer cai. 
IIT TIS CEO the parenti of that node. This pointer 
was necessary in order to move tue selection ponmnter around 
the abstract tree. The ch no"  £ield identi2ies what child 
number that record node is of a parent recorc noce whereas 


pe nun ch field indicates tre Dumber O© Chilidver: that nodes 


has. he seh FO and nun Ch rleldsWwereNNedso CESateds to 
racilitate selector ıcvenent. RM n" felis 15 -useud Lor 
tne Gisplay screen. ucc rue "ty e? o Tecorg noce. 
There are seven types of roes as shown iL Table I. 


TABLE I 
Node Types 


1 nonterrinals 
DOSE mecs re 


ternirai strings 


identifier strings 


LT node 


tt rn A)‏ ےد سے د مک ہے an‏ گر _ےجیے nn nn ee en > ne Me‏ ا مھ د 


2 
3 
4 expression noie 
4 
6 
7 


lgnore node 


ی rn y nu nee A ee‏ چم 


BEEN nn nn er nd 


The node type has an efrect on the selections availabie, how 
the tree is "unparsed" for display, and the movement of the 
selection pointer. 

Mente rules are parsed a r.rocedure, get tree, 
۳۰۰.۲۰6 67ے و‎ 168٤10 ٤۶66 that was stored 


after a previous editing session, Ie tre used inputs the 
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raue Of thew sale. Ir a user stored tree 15 ٦ 


E 
t h 
e 


3uitializatlon route «ii NEU Xu 


e L 
rule tree alu use it aS “Ne root Uu E T 


The final steps of the 1136 7 ۲ 6 ss 
tne display for an eciting ze on. à pointer, prog eae 
wiil be set to joint at tie + 8-0 if a user specimen 


tree is available then tne ¿rog ptr “is sot to the "Loom 
that Specification tree. 


The next ster is to clear the Screen and Zee M 


ti the initialization routine asso 
tie selection pointer to the ¿first seiection of the ns 
If the initial production rule vas 2iS,iayea the aS sS 
tree would aupear as follows: 

<cOmD spec> 


<sel pre 2 Ir 


EXE 


x © y 
<indent><cr><mocule_spec> 


as. Print UP 


The print routine, which unparses the specifica- 
tion tree being developed and displays it on the screen, 
deserves further explanation due to its complexity. It is a 
recursive procedure which does an inorder: traversal of tne 
Specification tree and, as it visits each node, will respond 


according to tha cio Cee 
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0 MUN UNE IAS SSO TO the یر یں‎ 
routine and tnen a case statement determines how to handle 
the roct nouezand allznoues recursively passed to it. Since 
e Toot node 15 the left hand side of the rirst production, 
HU TS not Skisplaved. Instead, itetreatew@as a nomé@ispla yer 
nonterminar rode which is exrlained beior. 

Ste calnbert” factor aS tO vioetkeL or NOT a 


Meade carent's field 15 to De dispiayeu GS the Tevord bosicai. 


EN cece met thue field 1sg55ueowll it59 output to 
the screen. 

Anotner ractor Zar Jsp aya lity ®is the iin- 
number of the node. BeUGe EA s@meren Can OPL7 CGliSoizY dà 
ETE ITE TUNEL OCC NCS c. vWe = Spe Ccizicatiun at one 
EE c-meussent 1e sassigned ror the dàispiey which wii. 


dictate what nodes in tne speci 
۳۰۰٠ in’ field 15995 a oarticu"ar value ranje of 
Stsplay tine number then It vili be displayed. Gtherwise, 
even if the disp field is true, it wili not be displayed. 
Borrexanrie, if the current line is twenty, then ali the 
Specification nodes whose ln fieid falls in the range twenty 
thirty Zive will be displayed. 


As menticned before, the print routine responds 


to a node's type via a case statement whicn has seven cases 
tnat correspond to the seven node types in Table I. 
Case one handles nonterminals. This Casu cCLccEKZ 


wnt ally to see if tne nonterminai is a carriage return or 
an indent. If it is a carriage return, the  screer line 
number is incremented and the selector positioned on the 
mE line of the Screen. Ifi the nonterminal is an indezt 


Pw 
aa 


Symbol, a global indent counter is incremented by one ans : 


n 


lent Elag is set. This mechanisa 1S used to cause tne 
nonterminal and ats descendants followiny the indentatica to 


me indented. 


3 


Before a nonterninal or IS GES TITS 
displayed on the screen, a gGlotal flay is cnecred TOPS 
the preceding ronterminal was an indentation. If it was, 
then the global flag" is set to off and “a ۱۹۸۸ 7د‎ ۹۰٠ 


tur vedo. After the nonterminal»or its destencant> aa 


1? 


displayed, tne local flag is checked. ff the fla TE ST 


ie 


number of immediately preceeding indentations ace suLtracted 


¿rom an indentation counter and tne local flags iS 7 


رت 


fb 


off. Using this method, the iIindentatior arrects on M 


tt 


nonterminai or the expression fcllowir, it. For example, i 


the rule for «&aoduie spec» was: 


«moduie spec» -» SpPZC €spec rd» IS 
(<Sıindent><er><rar am M 


<indent><cr><spec_block> 
ILe initial display would be as follows: 


SPEC <spec_10> 1S (<param DE TE 
<spec_block> 


When «param block» is expanded the indentation wiil affeci 
all of its descendants so that the display would arneur as 
follows: 
SPEC ¿Special d» IS 
PAnA MS 
CS eeu oe k> 
ULE TNE DET 
«spec block» 
dote that €spec block» is indertel Dy two: This happened 


because the ruie for «paran block» has an <indent> ٥٣ 
end and the rule [or «uHoduLe spec» “nas an 6 
preceeding it. If <param_blcck> was  eliminatea, then 


<spec_block> would only be indented by one. 
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T 
nae 


ERN ESSE 17060۱۰000 ے0‎ 6 zoutine is Or a 
5ت م5۰‎ anan een tae boolean field "dis." is 
Paseo ais pla Vaolilltye TE ne. tieid is true then the 
noce's parent field is written to the screen. If the nonter- 
Mnai is not to te displayed, <۰ ج٠ 1ت ج2‎ 757۰9 call 1S made 
۰۰۰٠٠٠٠٠۰۲0 ۲706 for each of the™= pointers in tae "child 
Meld ož tnat noie. 

Case two handles ali the modifier nodes. "e el 
selection modifier node is encountered mern tOo تاج‎ 
Brespiayed, the print routine Ml isplay aM the setzc- 
mons ana place tae "|" s,mbol between the Choices. Ali za 
Mener MWOGltTler nodes will have a recursive caii to tas print 
Boutine On their descendants. (nt eet. Eo. tie 
recursive call, the node is checked to see if it is to be 
displayed. This is now the postfixing of tne modifiez 
synLols is accomplisned. 

Case three handles the template nalas. These are 
nodes that have strings that are rejuired in the 728723 


For example, every module must have the string "SPIC" and 


U, 


Meemotring "IS" on the first lire. These nodes nave no 
E cendants and SO tne print routine will not make any 
e cursive calls on the descendarts. 


$ 
Case four deais with expression nodes. An 


) 
EXpressron node is used to point to the  desceniant5;*' iis 
Pee numer tome 1S to allow the EINE routine 5) AA. CSI” 
Sive calls on each descendant. MORAS tota fla is ser in 
5 یت‎ two GOndition indicating the expression is folloved 


Mea MOdificr, taen brackets surrounding the expzcession wii. 


be displayed. 


Case five prints the identifier nodes. 7h: 


(D 
Ui 
0 
pa 
(3 
(D 


MeEmital Strings for 1dentirrers and are treated like tne 
case three nodes. 
Cicceolwedealsewith the "ALI" nodes. This node 


HS Used to store trees such as options and selections after 


in 
Un 


these nodes have been acted on. it also retains tre 1 
and alternation trees. Normally the ALY node nas cro dc eE 
dant nodes. The leit one is for the branch lea din 
displayed strings. Ihe right one is for Storing the op Gee 
selection,  Xleene and alternatwiometreess or itenay ئ٦‎ 
anotner ALT node. The. print meutine wail resursivel yee ؟75..ه‎ 
each of the children modern 

Case seven is the ignore case. This is used when 
the node and its descendants are to Le ignored. For €xahble, 
in tne case where tne option ncde was used and Stored. ط1‎ 
option expression is no longer desired for display so it is 


given a type seven. 
3. Main Body Loop 


Ihe editor, after initialization, enters a 190 
tie main program body which inspects tne type node at "١ 


the selection pointer is pointing amd cadis one Of "eae 


ct 


routines to handle that case. The routines are shown in 
780006 ٠ 

All of the routines which handle the various node 
types are essentially constructed the same. A procedures 
sho_slectıon, 1s called 1a each routine which displ avs 
Various selections available  smwetanat routame pt the ٣٦ 
of the screen. Bach routine then enters 4 i 
retrieves the input from tne terminal and decir er e 
input viaa case statement. If egan Inval cka 
selected, it is ignored and the routine loops for ancther 
312 | 

The following sections will discuss the routines 1i. 
rable II with the exception cf tne first Section which 


discusses the selector movement routines. 
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EMEND N X  . | 
| TABLE II | 
| Routines called by Main Body Loop | 
| Node iype Routine | 
| Nonterminai Id repiace | 
| R PI EO OH | 
| | Selection | 
| + ۰۰۶۲۰۰67 | 
| = ۶+۶91 | 
| idertifier Id_deselect 
| ALT altrep | 
m —€—— ————————————— — HÀ | 


ae Selector vdovement Rcutines 


There are four routines used COo OSI tioa Ene 


۲ 
L 
Belection pointer ona node in the Specification tree in 
concert with tne selector on the screen. TIhe7 each corre- 
NEO cue Of the tour selections, "u", Mad", “EN, and "ir 


۶ 
available in all the routines shown in Table Ii . Ws 
or "u" inputs are received, cne of two Toutlies wi 
called to move selection pointer and tne selector to the 
mext displayable selection either down or up tue serecn; 
Mees means ene selection pointer will be at a node that is 
visible on tne display. 

tiem) were Trap uts move tne selector backuard 
SeetLOnWdra tO any node in the specification tree that is 
available for modification. These two inputs also have two 
‘separate routines which move the seiection pointer in tne 
tree. teow oO nad -£" selecticns allow the interior soles, 
Piven die NOL Glopia yea On the screen, to be available ior 


alteration. 
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All of tne selector Movement 0ء۶2‎ ۴٤ e 
designed so trat they wlll not position the <&c è 
pointer on "EXP" nodes, modirier nodes (20 they ¡a ven 
erased or selected, and terminal type three noce 
contain strings usei in the grammar. ine nondisplaye 
fier nodes are accessed in a different manner. At 
selection pointer is moved, the current node is checked ta 
determine if it is on the screen. If it is not, the curre 
Screen üispiay line is updated to position that nodc 10 
center line of the screen. The print routine is then calle 


to upaate tne screen. 


b. Repiace Routine 


The replace routine acts on type one ronteralnal 
nodes. Iwo general cases are pcssible, dependingj on wüectuer 
the node is dis layed. In the case where the nonterminal is 
displayed, the replace routine enables the usec to adj ta 
the specification tree the production ruie tree indicated by 
the nenterminai node's parent field. As mentioned in the 
previous section, this occurs when an "s" is ilüput. Figure 
4.4 shows the specification tiee before and after an "e! 15 
input and the selection pointer is at <spec_1ld> UNA 
specification tree. 

hen "s" as selected, a routine caliel Ciune 
locates and reproduces the the production rule tre= for 
<spec_id> and returns a pointer to the repiace routine: SEn 
replace routine then attaches the rule tree to the specifi- 
cation tree. The <spec_id> "disg" field is then set to ERE 
to inhibit its display. 

It is possible that the selection pointer SS 
a type one nole that is not displayed; its disp field is set 
to false. in this case, the displayabie descendants are 
Shown in the selector's field. An Option to erase is then 


available to eliminate all the descendants and restore the 
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SS agnum s AU diae D e a me n ame reg mn e ae a a ee AA TP GNU: en ہے حسبصے مہےمےے ہے مھ ے‎ 


WEE. ہے‎ 


Center? raram block> 
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Figure 4.4 Selection of <spec_id>. 
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the not displayed nonterminai. 

One SP Cial Case is addressed lá  tul1S routrue. 
21-3 ThE CCE en te Selection pointer 5 at the root 
یتب رت‎ on tree. Im this case, the first ; reauc- 
۰۰۲۷٣0۰۰۱۱۱٦٦ ۱۳۰6ء‎ 4۴601" did substituted  waen tre "e" 
selection is made. This 1S paramount to erasing the entire 


BI CE. 


S. 20٣۷٠۹ 


& 


he id, replace routine was create) co al OA 
user to input directly on the screen the luentific ٥ 
inis rcutine is calied when the selection noie type is one 


and the nonterminal is <identifier>. Mhen an "1" 15 IC PU 


case statement is executed which determines the  startiro 
position on the screen by inspecting the Curren. A 
pusit fieli. A blank is written to the Screen ٦ 
that position. The routine then taxes inputs From ٣ 
terminal and places them in tnat node's parent وت‎ sS 
character input is cnecked Lor proper lexical Uratitar d 
echoed to the screen. invalid characters aTze ignorec. be 


inputs are terminated when either twerty characters have 


been input- -or a m MEn 
a "۰0.۰. 


The option routine is called «nen the current 
node is type two and the parent field is the option uode 
modifier. This routine will allow the user either to erase 
the opticnal expression by selecting an "e! or incita cms 


expression preceding tne modifier by selecting ar "s'. 


è when the cption is Selected or erased ar zes 
node is inkerted IIo option node's ەمۓ‎ ٤ ۵1ذ‎ 15 ٥٠٦٠ 
tree. The ALT node is treated as if it only res tro MM 
dren. Ine right child will store tne option tree so ٣۲ 


the user later desires to reverse nis previous ijecisior ana 
include it, he can reinsert the Option tree into 119٦٣ 
positicn in the tree. The left child of the ALT rode will he 
Lll if the option is erased or will contain the expression 
that was preceding the option moditiecr if the 6.7-7 
selected. Figure 4.5 shows the tree before ara after the 


selection ۶-۰٦٤٣ 6> ٠ ۹٦ 
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Figure 4.5 Selection of the Option <paran_block>. 


when the option is stored in the right child, il 
iS assigned a type seven so that the print routine vals 


ignore it and its descendants. 
e. Selection Routine 


PnecoebhecctTogj"routi3ne is called wiren tke selec- 


SS nos pectwo and the parent field is the selection 
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modifier. Because the seiector down or selector a, routine 
can not access tne descendants cr a selection node or ojticr 
rode, tne selection routine was written to peruit the user 
to desiynate the desired striny by using the "nmn" key To 
position the selector over ate [nen "m" is input AM 


statement is executed which will loop between the selections 


L 


until either a selection 1s made or a "j" is entered to ب٦‎ 
out of the loop. When a particular nonterminal is selected 
the routine Lenaves like the option selection; an ALZI node 
is inserted for the selection node and the selection rode 
and its descendants are stored in the right child oz incom 


node. 
2 Alterration Routine 


The alternation rcutine is Called wren the 
selection pointer is at a type two node and tre ¡arent ls 
the alternation modifier. The routine allows the user to 
duplicate the expression or nonterminal preceding tne pouil- 
fier. When the "s" selecticn is made an ALT no 
inserted into the tree at the alternation position. The left 
chiid points to a cloned ex;ression of the descendants OF 
the alternation modifier and the right child points ware 
original alternation node and descendants. Figure 4.€ shews 
the tree before and after a selection. Unlike the oriki 
ard seiection routines, the rignt caild in tuis case MM 
not Le typed seven since we want to asiow the user to mane 
as many selections as he would desire. After the user hes 
made at least one selection, then the node can be erasec; 
the alternation routine is written so that at least one 
selection of the nonterminal or seiection Rust re male. 
ıhis 1s accompiished Ey checking if the alternation ca es 
is a child of an ALT node: It alternation modziier is, te 
a selection must have been made and therefore the alterna- 


tion tree is eligible to be’ erased from the dispiay. When 


ow 


an "e Bm au A e a se AMET O 

EIS irst descendant to type Seven ani tie csp Tiei < 
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rigure 4.6 Selection of an Alternation Expression. 


Ge Kleene Routine 


o 
—— 


The kleene routine is executed if the curent 
mode 25 type two and the parent field is the kleene 27 
Bier xkc0bHuevadrerndta?on rcutine, it allows unlimited 


duplication of the descendants ci the modifier. The routine 
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is the tre sane as the alternation zouti eee e MN 
allows tne user to erase the Kleene modizier ana its Gescen- 
dants even if a selection has nct been nade. 50 accom 77 
this, tne kieene node's display fiel is set to false arc 


the first descendant is set to type seven. 


h- Altrep routine 


The altrep routine is called when the veiectioi: 
pointer is on an ALT node. As discussed before, the ALA ieee 


is used to kandle cases Ior the option, selection, alterna 


u 


tion, and kleene routines. Consequently tne artrep Toma 
handies two cases; one case is when the ALT node is the 
result of action taken on an cption or selection noce ٣٦ 
the other case is when the ALT node is tne Tesuirt of action 
taken on an alternaticn or kleere node. 

If the ALT node was the result of action 3 [ 


on an option or selection node taen the case statenert will 


mn rey 
ds ape 


permit the user to erase tne left tree, eliminate the 
node and place tne option or selection tree in tke Specs 
cation tree in its former position. Figure 4.7 shows the 
result of reselecting tne*Xparamu"block» o»tioun Kiichi are 
the «param block» option tree imn its previous positior. 

The case where the ALT node was the result 6r 
action on an alternation or kleene node has two sulcases, 
Cne case is where the àL7 node proceeds another ALI noice 


such as foliows: 





Sel ptr 


SCOPE ALI 
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«sort id» aT 


EN 


<sort_id> 
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Figure 4.7 Reselecting the <param_block> Option. 


= 


In this instance, a selection is available to eliminate tio 
۲٣٠۰۰ ٣ع‎ 5 leit child and all or tae left ciiilu*s Jemen 
dants. 30ت ۲3ح۶‎ 1701406 Selecticrs Tac: 
before. 

The other possibility is where the ALT nols iš 


adjacent to a kleene or aiternation node as follows: 


pO 


SGortogdo 


oo. = 


N 


“SO bo. a> 
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In this case, tne selection to رت"‎ 13 112۱ ۶09۹۹ TU 
able and if the kieene or alternation node has beor CEs 
a replace selection is available to redasplay tine kico EE 
alternation node and its descendants. "is is dene sS 
setting the alternation or Kleene node's first 86 


type field to seven’ ang the Terre lose rue, 
4. Termination 


After the user inputs a "ca" to cuit the ےے۶٦‎ 
session, the editor exits the main body ى09‎ 3:۶۶۹٦ 
a termination routine. This rcutine may cali two dirif ٦ح‎ 
routines depending on the users desires: 

E SIO a 


2.  2rettv ۵۶٤۲ 
ae Store Tree 


This recursive routine perrorns an inorder trav- 


ersai of the Specification tree to store the fields of each 
node, It is called if the user answers yes to a :ronpt 
asking if he wants to store the abstract tree. When the 


routine is entered, a iile is opened with the fi1jenane input 
at the beyinning of the editing session. Bacheniode 07 
abstract specificaticn tree is then visited and its 223009 


stored in the fiie. 
be Pretty Print 


This routine is called when the user answers yes 


to a rrompt asking i£ he Gesires a pretty print rile o SS. 
abstract tree. This fiie will re an ےج ج٢0 تہ ۲ح رت‎ >٣ 
abstract specification tree It is essertiaily the Sada 


routine used for unparsing and displaying tle tice Os 
Screen, except tais routine Iiynöres the TiTe nurter 3 ٦ 


display: 
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V. SUMMARY 


Specianj is à language based on aijebras which sas the 


faciiities ror creating formal Specifications treat 


ft) 


. TM 
٦ ~- e .y y. 
— l> iui m 


Criteria establisned by Liskov and Zilles.  Speciarj reduces 
the compiexity of a speciticaticn, and makes a Specification 
more readable and easier to ccnstruct by using a necular 
hierarchy; HOC UEC oO Ne ee rGdn ENS scene DUM in Cri 
meer speeisıcatıon nodules through the extend  modiflar. 
Paraneterlizead speciiications moGuieS hei, to  wAlnaBiz& 4 
Specification by eliminating redundant ECCI 7 
nodules. Futhernore, 9521۰٤75 فی ۶ ر ر0‎ ت7٣"‎ Carr2ee rotirrL- 


imbedded in tne grammar help to promote a cons 
between specifications. A consistent format viii assist. 
readers of the specifications developed Iron the Speciar; 
grammar. 

secause there are Many unresolved issues ir usinj alge- 
maS LOL Specifications which may effect tae 
۲٣۰۰۰۰۱۶ Oz Speclany, a table driven syntax directed elitor, 
Speced, was created to assist the Specifier. lts rurvose 135 
mormcLeate Syitactically correct Specifications. Furthermore, 
the design of the editor permits the user to easiiy mocióv 


- 


tne grammar. 
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APPENDIX A 


SPECLANG GRAMM AF 


Ihe production rules are written in a noc MES 
rackus-Wäur (BNF) notation. An explanation of tne zz 
symbols uses to produce terminal Strings in the 77٦ 
45۰ ۶ 62۴7 


< > - A name enclosed Ly pointed brackets indicates amos 


terminal in the grammar. 


' ' - Strings 11 Quotes 770176 بے‎ ٣6٢٠٢ +66 0 

0) - Rounded brackets indicate the scope of a nmcleilier 
symbol. 

* - The Kleene closure modifier may follow either rounded 


bracxets, terminals or non-terminals. It mears that zero or 
more of the expressicns, terminals or non-terrinals mar be 


produced. 


+ - The alternation modifier is used like the Xivene modi- 
fier. It means that one or More expressicns, terminals or 


non-terminais may be produced. 


| 1i 


- Ine selection modifier indicates a Choice Ol eee 
terminais, terminais or expressions. It is usec between two 
or more choices. In order to clarify the selection, Loum = 


brackets must enclose the selection. 


4 


? - The option modifier indicates that the terminal, ۶۶۶ 


terminal, or expression iS opticnal and carn be excluded. 


-> - The production symbol indicates what a Non termina ٦ 


produce. 
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a) production rule consistS ci a nou-terninal I 
@ production symbol foliowed by an expression. in ex¡ress 
is cCO@,rised or terminals, non-terminals, modifying s7mbols, 
and may inciude other expressions. 


Then gi annar for Speclang includes indentati 


= 
[i 
~ 

è 
er 


O 
nea 


- 


Sobel agemrebUrio tO Torce a rorea&ttinj or the sreciz 


ho 
f 
ar 
C 
gh 


- e 


A specification is complete when ali the Strings in the 


— 


> ج 
- 


specification are terminal strings. This is acconplisheä Ly 
Sear tilg With amnonternminal and Substituting the noptercinal 
Were ATE OC CECE Light mand side of the production rule for 
Ae remaining penterminals are then substitute? until 
ail strings are terminal strings. جح ط5‎ KAL, ESIL] 


With the nonterminal «spec module» ard suostitutizg tr 


(1) 


ull hand part Oi the rule results in tne following: 
«spec header» <param_rlock>? <spec_body> 
The rule for a specification header is: 
NE ca der a> SPECIES pese 10» 'IS' «new line» «indent» 


۱٠-٣۱۱6 1706066 00 ٢١3٢٦٣٣٦٤0٣111٤0 tlhe above stiiry to 


produce: 


Bere ewe croc 1d>) "1S! <new line> <indent> <parar_oloca>; 


© 


<spec_bcay> 


<newline> aná <indent> are interpreted as carriaje return 
and a tab respectively, except waen they are in an expres- 
sion followed by a modifier, and make tne developing speciz- 


ation appear as: 


520۲5006055066 id? 15 


SAO EOS Pp ec. DOE rn? 


EAS ۱۴۱٠ب‎ Is optional it can be eliminated to 


"Produce: 


SPEC «spec id» I3 
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<spec_Tocy> 


| 


he suistitutions are contintea until ali Siri er 
terminai strinys. The first nonterminal string in Speciangj 
is «comp spec». This denotes a complete specification veer 
menticned in tne previous section a specification developed 
=rom Speclang Is nade up of modules. Bach modure ih 19588089 
is a specification. To reflect this the riygnt hand side of 


s 


the grođuctior rule or <eonp Spec> TS modue e ie 
other words, a complete specification is made 1) cf one »? 
more specification mcdules. 


the production rules are as follows: 
<cormpiete_spec> => (<moduie spec><newiilne><newline>) 


<module spee>r sera pen ee 
(<indent><newline><param Diock>) ? 


<indent><newline><spec_Slock> 


<spec header? -2 T5? 


£3 


Cr Se Cet IS 


<param bLOocx> -> PARAJE ERS CITED Ae 
SEIN 


"DEFINED BY' <indent> 
<spec_id> ~> <Iidemtırier> 


<5 ec biock> -2 extepd ormi e 


I 


newiiı 


(SEpec SOJY? 1 arad- cd 
<spec_bodv> -> <sort_body> <rewline> 


«oo DouUy> cM > 


<axion vody> 


«extend fora> => MELTS DN 


¿Neto CEXTE 1 > 


“RITHA'"<indent> 


«extend list> -> ((<spec._id> |<panan GCali>) | <ner ie yee 
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ا M‏ رج تب > و بک کیو ہا تج 
„HERE <NEeEWLLII2 > iow a >‏ 


٣۰۰۰٠۰٢٢۹ vara i> 


<actual ors»‏ ج۳06 1ت 0 تک 


SORTS! 


Sel lala no 7 cactual 


EIU SOLES => “ACTUAL 


Sor 1d> 3%) + 


(Ie eo nento < cort 7۶۲ 


'ACTUAL OPS"‏ 2 ویر350٣‏ ۰--۔ 


SE o 0006 OP ا20‎ ۷ ۲6 COPD CS) + 


<Sort body> -> 'SORT' «newllrne» 


Si EOL Es رک‎ + 


تک 

<primitive ops> <newiine> 
«derived ops» &n3wlirne»)? 
«error ops» «newline»)? 


K«nidden ops» «newiine»)? 


SO x-clemtifier» 


Eo ops TONS] 
<indent> 
(<indent> 
(<inaent> 


(<indent> 


<newiiNne> 


SEA VS op S> -IZNZEIMILTINVNE! 


>0 ۲7 3۴10 7+ 


Gate iets 


"SERIVeo" <niewiine> <inicat>‏ >— ہر رت 


i. 2 ME e eru o a‏ ! ہہ 
Ce ooo »o»)ocracrcirzcice‏ 


: e ett 4 E 


ey. ete Wil o> <n tO 


<opecations> 


NE : می ہت‎ TOU EET x Morus o ESOS 
crc ac icon foras toc! enewl..no»)t 


Mo o Sore But? '-2»' “sort ib?‏ کت 
d DOE x OE 3» ONT CSOT 10>) *)?‏ 
SSMUS oO c«xnijent» («newline» <axions>) +‏ 
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<axiens> -> «expression» SOME 1 1 ۶٥ 


Xexpression» -» (Ssort "+٣٦ 


Xop exp» -> <op 1d> (MSc E 


(", “CEPSA TS 


q o س س س‎ D D D کے کے‎ D Pu ee ee re 


¡exical grammar 
<spectext> -> (<delimeter>+)7 | (<lelimeter_pair>+)? 


X«üeiimeter» -» «commento ocv uo E 


<non_delineter> => <identirier> | <erringseon van ٦ 
<identifier> -> <lettem |< Vereon ee ٦ 
«string constant» -» YY <sym. UN 
«letter» -» "A ¡BIEN RNG TT 
CRIT AAA ۷ ٥٦ ei 
TUT Ph VEL ta Zr ae eu 
tetti upro t h a t Uem Sr 
Toh] Poh tat) Fee ae III EEE 
eee 
<A TU Eto => *Q'1*' 1*1*2*1t 37] ٠ك‎ 
<newiine> -?  (<connent2 FE Career EE 
<comment> -> (*!* (<symbol>|<letter>) + <Ccarriage retum 
«symboli» -» «letterp^]sSdrgot MEME 1:٣ 
1 rer“! DEE T ٥۲ Als) 
TTT eer SA 
١ )۲ے‎ AAN 


<indene> -> (Tn TE aD 
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